SASL issues

On Pn, 2008-01-14 at 13:45 -0500, Bob Larsen wrote:
> The same thing has happened with several clients.

Which ones?
Have you checked h
ttp://jabberd2.xiaoka.com/wiki/ClientCompatibility ?

-- 
  /_./o__ Tomasz Sterna
 (/^/(_^^' http://www.xiaoka.com/
._.(_.)_   im:smokuxiaoka.com

_______________________________________________
JAdmin mailing list
JAdminjabber.org
http:/
/mail.jabber.org/mailman/listinfo/jadmin
FAQ: http://ww
w.jabber.org/about/jadminfaq.shtml
_______________________________________________

On 14 Jan 2008, at 18:45, Bob Larsen wrote:

> I have compiled and installed jabberd, can launch it,
but am having  
> issues registering users.  When attempting to register
a user, the  
> client throws an error (error varies with client).
>
gsasl's DIGEST-MD5 implementation doesn't really do the 'be
liberal  
in what you accept' thing, and as such is incompatible with
a large  
number of currently deployed Jabber clients. If you can't
dictate to  
your users which clients they use, you're out of luck.

Jabberd2 does have a Cyrus SASL implementation too, but I
haven't  
been as proactive in maintaining this as I would like, and
it may not  
work in current releases. I'm not sure when I'll have time
to check  
this out properly, and I'm also not sure for how much longer
I'll be  
(professionally) interested in maintaining it - I suspect
we'll  
strongly consider transitioning to a Jabber server with a
supported,  
stable, SASL implementation at our next major upgrade. gsasl
is  
pretty much useless from an enterprise perspective.

Cheers,

Simon.

_______________________________________________
JAdmin mailing list
JAdminjabber.org
http:/
/mail.jabber.org/mailman/listinfo/jadmin
FAQ: http://ww
w.jabber.org/about/jadminfaq.shtml
_______________________________________________

Your Insight is greatly appreciated.  I was able to solve
the problem by disabling the DIGEST-MD5 mechanism. This
particular deployment in on a secured internal network, so
using the PLAIN mechanism does not pose a severe threat.  
 
Plus, I had planned on deploying TLS anyway, almost makes it
a moot point.
 
Thanks again
Bob Larsen

________________________________

From: jadmin-bouncesjabber.org on behalf of Simon Wilkinson
Sent: Mon 1/14/2008 2:31 PM
To: Jabber server administration list
Subject: Re: [jadmin] SASL issues




On 14 Jan 2008, at 18:45, Bob Larsen wrote:

> I have compiled and installed jabberd, can launch it,
but am having 
> issues registering users.  When attempting to register
a user, the 
> client throws an error (error varies with client).
>
gsasl's DIGEST-MD5 implementation doesn't really do the 'be
liberal 
in what you accept' thing, and as such is incompatible with
a large 
number of currently deployed Jabber clients. If you can't
dictate to 
your users which clients they use, you're out of luck.

Jabberd2 does have a Cyrus SASL implementation too, but I
haven't 
been as proactive in maintaining this as I would like, and
it may not 
work in current releases. I'm not sure when I'll have time
to check 
this out properly, and I'm also not sure for how much longer
I'll be 
(professionally) interested in maintaining it - I suspect
we'll 
strongly consider transitioning to a Jabber server with a
supported, 
stable, SASL implementation at our next major upgrade. gsasl
is 
pretty much useless from an enterprise perspective.

Cheers,

Simon.

_______________________________________________
JAdmin mailing list
JAdminjabber.org
http:/
/mail.jabber.org/mailman/listinfo/jadmin
FAQ: http://ww
w.jabber.org/about/jadminfaq.shtml
_______________________________________________

--
This message has been scanned for viruses and
dangerous content by MailScanner, and is
believed to be clean.




-- 
This message has been scanned for viruses and
dangerous content by MailScanner, and is
believed to be clean.


_______________________________________________
JAdmin mailing list
JAdminjabber.org
http:/
/mail.jabber.org/mailman/listinfo/jadmin
FAQ: http://ww
w.jabber.org/about/jadminfaq.shtml
_______________________________________________